SQL Injection Vulnerability in Beijing Weihaiyunshang Technology Mobile Cloud Mall

Ltd. HiShop.cn, continues to specialize in providing e-commerce software and related value-added service products for small and medium-sized enterprises SMEs. It is the earliest and longest lasting leading brand of e-commerce software and service provision in China. A SQL injection vulnerability...

CVE-2017-10937

SQL injection vulnerability in all versions prior to V2.01.05.09 of the ZTE ZXIPTV-UCM product allows remote attackers to execute arbitrary SQL commands via the opertype parameter, resulting in the disclosure of database information...

OURPHP Background SQL Injection Vulnerability

OURPHP OURPHP Building System is a web content management system developed using the PHP language. A SQL injection vulnerability exists in the backend of OURPHP v1.8.3. Attackers can use the vulnerability to obtain sensitive information from the database...

EyouCms Multiple Pages SQL Injection Vulnerability

Eyou Content Management System EyouCms is developed by php + mysql a set of open source cms dedicated to small and medium-sized enterprise website construction. EyouCms multiple pages exist SQL injection vulnerability. Attackers can use the vulnerability to obtain sensitive database information...

Msvod Cms SQL Injection Vulnerability

Msvod Cms is a content management system CMS for video-on-demand websites. The system mainly provides services such as video-on-demand and video aggregation website building. A SQL injection vulnerability exists in Msvod Cms version 10. A remote attacker can exploit this vulnerability to execute...

SQL Injection Vulnerability in POSCMS v3.2.0 (Free Edition) A***.php

POSCMS PhpOpenSourceCMS is a set of China Tianrui information technology company developed a set of PHP and MySQL-based, open source, cross-platform Web content management system CMS. POSCMS v3.2.0 free version A.php suffers from a SQL injection vulnerability, which can be exploited by attackers ...

SQL injection vulnerability in UKcms v1.1.7 of Lingji Network Technology Co.

UKcms is a simple, flexible and powerful web content management system based on PHP7 and mysql technology. Lingji Network Technology Limited UKcms website builder v1.1.7 has SQL injection vulnerability, which can be exploited by attackers to obtain database sensitive information...

SemCms php version V2.7 suffers from SQL Injection Vulnerability

SemCms is an open source foreign trade enterprise website management system, mainly used for foreign trade enterprises, compatible with IE, Firefox and other mainstream browsers. SemCms php version V2.7 SQL injection vulnerability , attackers can use the vulnerability to obtain sensitive...

SQL Injection Vulnerability in Shenzhen PointClear Information Technology PointClear MIS Management Information System

PointClear MIS Management Information System is an enterprise-level instant messaging platform launched by PointClear. Shenzhen PointClear Information Technology PointClear MIS Management Information System suffers from SQL injection vulnerability, which can be exploited by attackers to obtain...

CVE-2018-10197

There is a time-based blind SQL injection vulnerability in the Access Manager component before 9.18.040 and 10.x before 10.18.040 in ELO ELOenterprise 9 and 10 and ELOprofessional 9 and 10 that makes it possible to read all database content. The vulnerability exists in the ticket HTTP GET...

USN-3704-1 devscripts vulnerability

It was discovered that devscripts incorrectly handled certain YAML files. An attacker could possibly use this to execute arbitrary code...

Zhengzhou Kintechnology Co., Ltd. website building system has SQL injection vulnerabilities

Zhengzhou Prime Technology Co., Ltd. specializes in providing customers with online business solutions in the field of information technology. Zhengzhou DynaSky Culture Communication Co., Ltd. website construction system has a SQL injection vulnerability, which can be exploited by attackers to...

CVE-2018-11643

SQL injection vulnerability in the administrative console in Dialogic PowerMedia XMS through 3.5 allows remote authenticated users to execute arbitrary SQL commands via the filterPattern parameter...

SQL Injection Vulnerability in Shanghai Siting's WeChat Backend Management System

Ltd. is mainly committed to the automotive industry information technology software solutions, the main object of service are automobile OEMs, dealer groups, 4S stores and a variety of fast repair chain institutions and a series of customers. SQL injection vulnerability exists in the WeChat backe...

iCMS SQL Injection Vulnerability (CNVD-2018-14361)

iCMS is a content management system CMS built with PHP and MySQL databases. A SQL injection vulnerability exists in the spider.admincp.php file in iCMS version 7.0.8. A remote attacker can exploit this vulnerability by sending an app=spider&do=batch request with the 'id' parameter to the...

Quick Chat SQL Injection Vulnerability

WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports PHP and MySQL servers to set up a personal blog site.Quick Chat plugin is used in one of the online chat plugin. A SQL injection vulnerability exists in WordPress Quic...

Microsoft Windows: MS Security Guide: Enable Structured Exception Handling Overwrite Protection

If this setting is enabled, SEHOP is enforced. If this setting is disabled or not configured, SEHOP is not enforced for 32-bit processes. C Microsoft Corporation 2015. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright ...

PvPGN Stats SQL Injection Vulnerability

PvPGN Stats is a PHP-based tool that supports the integration of websites with the PvPGN game server, displaying server status, ladder pages, and more. A SQL injection vulnerability exists in the ladder/stats.php file in PvPGN Stats version 2.4.6, which stems from the program not filtering databa...

SQL Injection Vulnerability in hdcmsv1.2 System

HDCMS is a content management system package written in PHP , the database using Mysql. to provide powerful , complete functionality to complete the rapid development of the site . HDCMS system version 1.2 SQL injection vulnerability, remote attackers can exploit the vulnerability to obtain...

Shipping System CMS SQL Injection Vulnerability

Shipping System CMS is a shipping management system. Shipping System CMS suffers from a SQL injection vulnerability. An attacker can exploit this vulnerability to execute arbitrary SQL statements...